CVE-2025-68782

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: target: Reset t_task_cdb pointer in error case

If allocation of cmd->t_task_cdb fails, it remains NULL but is later dereferenced in the 'err' path.

In case of error, reset NULL t_task_cdb value to point at the default fixed-size buffer.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 6cac97b12bdab04832e0416d049efcd0d48d303baffected
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 45fd86b444105c8bd07a763f58635c87e5dc7aeaaffected
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 8727663ded659aad55eef21e3864ebf5a4796a96affected
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 0260ad551b0815eb788d47f32899fbcd65d6f128affected
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 0d36db68fdb8a3325386fd9523b67735f944e1f3affected
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 8edbb9e371af186b4cf40819dab65fafe109df4daffected
LinuxLinux9e95fb805dc043cc8ed878a08d1583e4097a5f80 < 5053eab38a4c4543522d0c320c639c56a8b59908affected
LinuxLinux5.8affected
LinuxLinux0 < 5.8unaffected
LinuxLinux5.10.248 <= 5.10.*unaffected
LinuxLinux5.15.198 <= 5.15.*unaffected
LinuxLinux6.1.160 <= 6.1.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References